Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/6401e8-82dd-4811-8011-719401bbca2e/1/ggPacOS4WrOFfJ9zlxfRv4ib8vc.roa
File: ggPacOS4WrOFfJ9zlxfRv4ib8vc.roa (raw, json)
Hash identifier: GVvjc/CAdZCNZlC9WMBAyRAG/zGzKzZpiwPU3qfY3hI=
Subject key identifier: 82:03:DA:70:E4:B8:5A:B3:85:7C:9F:73:97:17:D1:BF:88:9B:F2:F7
Certificate issuer: /CN=f448ee63f19d0c1f22c6f61ce4a81eceabb8e790
Certificate serial: 06E536AE
Authority key identifier: F4:48:EE:63:F1:9D:0C:1F:22:C6:F6:1C:E4:A8:1E:CE:AB:B8:E7:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9EjuY_GdDB8ixvYc5Kgezqu455A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/6401e8-82dd-4811-8011-719401bbca2e/1/ggPacOS4WrOFfJ9zlxfRv4ib8vc.roa
Signing time: Sat 01 Jan 2022 02:59:38 +0000
ROA not before: Sat 01 Jan 2022 02:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42507
IP address blocks: 91.151.196.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115685038 (0x6e536ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f448ee63f19d0c1f22c6f61ce4a81eceabb8e790
Validity
Not Before: Jan 1 02:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8203da70e4b85ab3857c9f739717d1bf889bf2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:47:25:6b:74:d9:a3:50:60:4d:1a:6e:34:ff:
bb:2e:44:69:f7:f4:6c:be:aa:91:02:02:22:75:33:
79:7f:9b:7a:a5:93:ef:78:97:64:31:b6:09:82:e6:
64:37:00:1e:3d:aa:b3:91:75:c1:43:e9:64:f0:72:
2a:ce:42:d9:89:5a:a6:d4:9b:ee:6c:c7:08:61:9f:
73:df:eb:49:eb:8d:e3:c1:46:84:52:c6:08:89:ad:
b9:aa:20:6e:29:2b:1c:01:7d:a8:63:e8:a0:c8:2c:
ee:e7:0d:26:16:a9:1c:ac:29:4c:e6:d2:03:1a:01:
2c:f0:85:72:dc:28:5c:f6:4d:7a:37:66:bb:63:6f:
bb:c2:f7:67:55:53:55:ff:80:d3:9b:a6:09:bd:ad:
2a:7c:57:d4:e2:08:c8:ca:a3:7a:a5:9b:a3:55:e0:
69:87:3a:f0:14:6f:1e:9f:c7:b8:b9:58:dc:5a:13:
6d:bd:f1:d6:fb:fa:5e:6e:92:c5:d7:05:25:56:79:
ae:e0:0f:10:8f:35:d2:ee:4b:3e:9a:af:9c:cc:a0:
7e:89:77:fa:20:96:aa:1e:53:2d:f6:27:ba:e9:9d:
24:9d:c0:59:5f:0d:9f:72:a3:05:4f:18:f6:3f:73:
d4:df:85:d7:3b:f0:e5:3b:03:64:08:66:dd:5c:82:
dc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:03:DA:70:E4:B8:5A:B3:85:7C:9F:73:97:17:D1:BF:88:9B:F2:F7
X509v3 Authority Key Identifier:
keyid:F4:48:EE:63:F1:9D:0C:1F:22:C6:F6:1C:E4:A8:1E:CE:AB:B8:E7:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9EjuY_GdDB8ixvYc5Kgezqu455A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6401e8-82dd-4811-8011-719401bbca2e/1/ggPacOS4WrOFfJ9zlxfRv4ib8vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6401e8-82dd-4811-8011-719401bbca2e/1/9EjuY_GdDB8ixvYc5Kgezqu455A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.151.196.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:b1:e6:cf:d0:ee:33:77:d8:84:fe:b1:50:38:4e:56:58:ba:
3f:43:36:bf:28:27:bb:b3:c8:40:d5:ea:d2:26:fc:e5:9d:32:
8a:df:eb:58:93:68:cf:5b:b4:9d:27:cf:23:22:37:09:16:9d:
80:21:99:cb:2d:91:11:61:6b:8c:af:0f:ce:1c:50:f8:1b:cf:
64:2b:3f:3d:b0:82:ba:e3:74:10:ce:bc:a3:d1:94:23:88:53:
9a:a6:d2:02:ac:2a:5f:bd:44:6e:2c:4e:0a:84:5c:d5:8d:d1:
2e:58:6f:25:c4:30:75:7f:9d:2f:a7:2f:51:31:53:1b:4f:6c:
77:6f:a4:5c:c7:c2:04:51:4d:5b:a4:3e:e8:9c:a3:88:eb:80:
0c:73:8e:09:14:45:01:a6:f0:f7:ae:05:8d:24:bd:67:4c:48:
ea:a4:b2:2f:93:9a:4f:c9:e2:34:a7:a2:35:ae:67:93:f6:ae:
11:6c:a6:17:4f:2c:36:5c:4c:c9:bd:e5:e7:34:28:7b:05:1d:
c2:63:50:ee:99:25:54:0c:95:46:eb:b0:4b:e7:2f:b1:22:3b:
4f:bf:b3:1d:7f:01:91:88:9d:27:41:aa:90:a7:e0:58:01:f5:
10:4a:e8:92:ed:ca:9e:0c:95:21:d1:85:72:25:31:42:55:ac:
80:c8:2e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org